forums.getpaint.net/index.php?showtopic=15218
301 Moved Permanently 167 B URL HTTP/1.1 forums.getpaint.net/index.php?showtopic=15218
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /index.php?showtopic=15218 HTTP/1.1
Host: forums.getpaint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 30 Jan 2023 23:42:51 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://forums.getpaint.net/index.php?showtopic=15218
X-Cache: Redirect from cloudfront
Via: 1.1 ee04daa979e7a02cc5ca472521bc18a6.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
Alt-Svc: h3=":443"; ma=86400
X-Amz-Cf-Id: UDu1k1upqN1ZGptDE9zUmoYhks6_6d7mAwZHQFUzL1WrK8pyaL6Jiw==
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 0c35c3ec659d3a26ea97e68d787bb043
d97e3672244efec5b7814f2d8a734cd1a9387854
4c946a026114ff05316d92277750facf3d5f5d162839149da0b7fb1a4cff6b5e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "4C946A026114FF05316D92277750FACF3D5F5D162839149DA0B7FB1A4CFF6B5E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=18742
Expires: Tue, 31 Jan 2023 04:55:13 GMT
Date: Mon, 30 Jan 2023 23:42:51 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash d2e72d45afe3d391c204b5391599607c
149d68b9d00a720b6f380fa2324779dca9dbe26d
f6f1c295c68dfebadacb1fc812b44e01c7ede0e203615ef3e2cced2ce2251e7e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "F6F1C295C68DFEBADACB1FC812B44E01C7EDE0E203615EF3E2CCED2CE2251E7E"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16616
Expires: Tue, 31 Jan 2023 04:19:47 GMT
Date: Mon, 30 Jan 2023 23:42:51 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
200 OK 939 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/
IP
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash dcd75ca6daca51c5e39d431468511793
07f76d3bf23d65c9110d810fa71a994e39e085d3
73672a816da4450fe2c938b08d7ae002d9ca29fdcbd3e29cc97084d826f8b459
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Backoff, Content-Length, Alert, Retry-After
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 939
via: 1.1 google
date: Mon, 30 Jan 2023 22:43:14 GMT
content-type: application/json
age: 3577
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 302c7548412192add063ad6c8b99cf3b
e5d178931a27db036ce8daae302594d3ff7050b8
fc2bd9091006189e67e8074093805ee5492ce16e1dbfba32e083abeeae34969d
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "FC2BD9091006189E67E8074093805EE5492CE16E1DBFBA32E083ABEEAE34969D"
Last-Modified: Sat, 28 Jan 2023 16:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=14069
Expires: Tue, 31 Jan 2023 03:37:20 GMT
Date: Mon, 30 Jan 2023 23:42:51 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain
IP
File type PEM certificate\012- , ASCII text
Hash 7b922915ebf1fa3639b333f994c74f24
144a3f80b98fd0652d4614f24cf6cbbee40f8938
adbb3e06df0e870f5c7a9cb81e8979d4e92735853d75c9b779c06470d4db5d9c
GET /chains/remote-settings.content-signature.mozilla.org-2023-02-28-18-04-20.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: EkPFbdt1aw30XSpkPBKZ7mGwr4azY8o8aigRNFTF5Dqxl9FYWwh3W1VMTaZnlB4MKdJmZngTuq+UGz+wu+6OPA==
x-amz-request-id: 93EH19BEQBZ5SBRP
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Mon, 30 Jan 2023 22:50:56 GMT
age: 3115
last-modified: Mon, 09 Jan 2023 18:04:21 GMT
etag: "7b922915ebf1fa3639b333f994c74f24"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Mon, 30 Jan 2023 23:42:51 GMT
content-type: application/json
content-length: 12
access-control-allow-credentials: true
access-control-expose-headers: content-type
vary: Origin, Access-Control-Request-Method, Access-Control-Request-Headers
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash e170cdfc52a5a581f59946cbeedec000
da9e5b2a82aaacdd568bfdaf13627b9b0925354a
47934b2550bfc6ee4234185d27eaf5210cfbc2ec76b423936d6b4c2c5eae5e99
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Cache-Control: 'max-age=158059'
Date: Mon, 30 Jan 2023 23:42:51 GMT
Etag: "63d76141-1d7"
Server: ECS (dcb/7F3A)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: 2BPS5cQPo5UVLEPsuXdik725mpQI8-cS9ta3uHw0m1Qe86f0Yj4Lbg==
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
200 OK 329 B URL HTTP/2 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
access-control-allow-origin: *
access-control-expose-headers: Content-Type, Last-Modified, ETag, Expires, Backoff, Content-Length, Cache-Control, Alert, Retry-After, Pragma
content-security-policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
strict-transport-security: max-age=31536000
x-content-type-options: nosniff
content-length: 329
via: 1.1 google
date: Mon, 30 Jan 2023 22:49:04 GMT
age: 3228
last-modified: Fri, 25 Mar 2022 17:45:46 GMT
etag: "1648230346554"
content-type: application/json
cache-control: max-age=3600,public
alt-svc: clear
X-Firefox-Spdy: h2
forums.getpaint.net/index.php?showtopic=15218
301 Moved Permanently 0 B URL HTTP/2 forums.getpaint.net/index.php?showtopic=15218
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /index.php?showtopic=15218 HTTP/1.1
Host: forums.getpaint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/2 301 Moved Permanently
content-type: ;charset=UTF-8
content-length: 0
location: https://forums.getpaint.net/topic/15218-simon-bs-plugin-pack-custom-brushes-editable-text-and-more-2014-06-22/
date: Mon, 30 Jan 2023 23:42:52 GMT
set-cookie: AWSALB=np2Ak3rbd3qTH6OsohTeWr7DlDSPe/Ay0wpJQasAospETPe++KknvBZM/fQSY7RxI5bfs7dARf0ZW/e4MUoeTEsC15s5addp9ZKiPJksKwjAvARX5Dwlr8zMkjQE; Expires=Mon, 06 Feb 2023 23:42:52 GMT; Path=/
AWSALBCORS=np2Ak3rbd3qTH6OsohTeWr7DlDSPe/Ay0wpJQasAospETPe++KknvBZM/fQSY7RxI5bfs7dARf0ZW/e4MUoeTEsC15s5addp9ZKiPJksKwjAvARX5Dwlr8zMkjQE; Expires=Mon, 06 Feb 2023 23:42:52 GMT; Path=/; SameSite=None
ips4_IPSSessionFront=vt8h7v33jhf0cf63bl573t2ck4; path=/; secure; HttpOnly
server: Apache
x-ips-loggedin: 0
x-xss-protection: 0
x-frame-options: sameorigin
content-security-policy: frame-ancestors 'self'
x-content-security-policy: frame-ancestors 'self'
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000
expires: 0
cache-control: no-cache, no-store, must-revalidate, max-age=0, s-maxage=0
x-content-type-options: nosniff
vary: Cookie
x-cache: Miss from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 6UdJGcdom5km-j8kMLs7qvyP2aAp4Ytghb5OGwPSdOk1rjYDEUGRiA==
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash e170cdfc52a5a581f59946cbeedec000
da9e5b2a82aaacdd568bfdaf13627b9b0925354a
47934b2550bfc6ee4234185d27eaf5210cfbc2ec76b423936d6b4c2c5eae5e99
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 30 Jan 2023 23:42:52 GMT
Last-Modified: Mon, 30 Jan 2023 22:35:44 GMT
Server: ECS (nyb/1D18)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: fu2VvC8Q1ot3_gaXsaCh6nib7Kt4TTlMhTFVVce2xO_78dY5U18qSg==
Age: 4028
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 22b9916fc1fafc9bdc9bb37f9eac8a9a
86f640e134a741a0f906a8e3a0f5c6659dd0e394
a29ee843c8a39551a1507cc6ad949ad509e33aaae8b72c58ac4884bad8b0b38e
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "A29EE843C8A39551A1507CC6AD949AD509E33AAAE8B72C58AC4884BAD8B0B38E"
Last-Modified: Sun, 29 Jan 2023 20:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=17347
Expires: Tue, 31 Jan 2023 04:31:59 GMT
Date: Mon, 30 Jan 2023 23:42:52 GMT
Connection: keep-alive
forums.getpaint.net/topic/15218-simon-bs-plugin-pack-custom-brushes-editable-text-and-more-2014-06-22/
200 OK 29 kB URL HTTP/2 forums.getpaint.net/topic/15218-simon-bs-plugin-pack-custom-brushes-editable-text-and-more-2014-06-22/
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (601), with CRLF, LF line terminators
Hash 4f00c2328a6441618ceb9da8d07a910f
01e25fb5638d40c01524f982eacb4291372363fb
80d283756ac503c43050dc2133f1119eb405eeecf4a7b6f0e4c0b3caf634216b
GET /topic/15218-simon-bs-plugin-pack-custom-brushes-editable-text-and-more-2014-06-22/ HTTP/1.1
Host: forums.getpaint.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Cookie: AWSALB=np2Ak3rbd3qTH6OsohTeWr7DlDSPe/Ay0wpJQasAospETPe++KknvBZM/fQSY7RxI5bfs7dARf0ZW/e4MUoeTEsC15s5addp9ZKiPJksKwjAvARX5Dwlr8zMkjQE; ips4_IPSSessionFront=vt8h7v33jhf0cf63bl573t2ck4
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
TE: trailers
HTTP/2 200 OK
content-type: text/html;charset=UTF-8
content-length: 29018
date: Mon, 30 Jan 2023 23:42:52 GMT
set-cookie: AWSALB=6WgGy7LXFag2NyYQQDXg20kPtiDxKxUwx0EAAGTpXLmJOySJFJbup6kG7t8+ShNG0vWB31OQmg1D6kelhmn+WD3zuaWJVrO27943c49jLPGJf/3J2pXTPt09CRmO; Expires=Mon, 06 Feb 2023 23:42:52 GMT; Path=/
AWSALBCORS=6WgGy7LXFag2NyYQQDXg20kPtiDxKxUwx0EAAGTpXLmJOySJFJbup6kG7t8+ShNG0vWB31OQmg1D6kelhmn+WD3zuaWJVrO27943c49jLPGJf/3J2pXTPt09CRmO; Expires=Mon, 06 Feb 2023 23:42:52 GMT; Path=/; SameSite=None
server: Apache
x-ips-loggedin: 0
content-encoding: gzip
x-xss-protection: 0
x-frame-options: sameorigin
content-security-policy: frame-ancestors 'self'
x-content-security-policy: frame-ancestors 'self'
referrer-policy: strict-origin-when-cross-origin
strict-transport-security: max-age=31536000
last-modified: Mon, 30 Jan 2023 23:42:52 GMT
expires: Mon, 30 Jan 2023 23:57:52 GMT
cache-control: no-cache="Set-Cookie", max-age=900, public, s-maxage=900, stale-while-revalidate, stale-if-error
x-content-type-options: nosniff
vary: Cookie,Accept-Encoding
x-cache: Miss from cloudfront
via: 1.1 09ae414c9d6c5323d5147457ada70ec6.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: f9U80IwdyVQ7kDqm2HIyQqwiqEM_8hcf1-qABF4F3bneI7EkzUcRvg==
X-Firefox-Spdy: h2
push.services.mozilla.com/
101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: rJaVA8zyg9OhdZPcmF+jzQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: xeRRV+L9A2zP6ddlLVSe/pJP2zM=
content.invisioncic.com/r125076/css_built_1/ebdea0c6a7dab6d37900b9190d3ac77b_topics.css.gz?v=d815db93211673395142
200 OK 927 B URL HTTP/2 content.invisioncic.com/r125076/css_built_1/ebdea0c6a7dab6d37900b9190d3ac77b_topics.css.gz?v=d815db93211673395142
IP
File type ASCII text, with very long lines (2941), with no line terminators
Hash 179f44143d9f001cfe0953cddb82c253
73f7728ed20b165b567b25b9bf3343314ee4931e
bb86d9038cf2cabedc69a5a9714ada229f354b96918c5a31a3dce5f26fe5f428
GET /r125076/css_built_1/ebdea0c6a7dab6d37900b9190d3ac77b_topics.css.gz?v=d815db93211673395142 HTTP/1.1
Host: content.invisioncic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forums.getpaint.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 927
date: Wed, 11 Jan 2023 00:03:22 GMT
x-amz-replication-status: COMPLETED
last-modified: Tue, 10 Jan 2023 23:59:14 GMT
etag: "179f44143d9f001cfe0953cddb82c253"
cache-control: public, max-age=31536000
content-encoding: gzip
x-amz-version-id: YPOAl5Lv8BDYZgy22inM7CmgpXZVwovM
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: iog5MCXEGh9Drp0lR2G_QXAWfiwuXo-61W4X1pmT2DzNE0RBzN5mXw==
age: 1726770
X-Firefox-Spdy: h2
content.invisioncic.com/r125076/css_built_1/258adbb6e4f3e83cd3b355f84e3fa002_custom.css.gz?v=d815db93211673395142
200 OK 1.3 kB URL HTTP/2 content.invisioncic.com/r125076/css_built_1/258adbb6e4f3e83cd3b355f84e3fa002_custom.css.gz?v=d815db93211673395142
IP
File type Unicode text, UTF-8 text, with very long lines (5580), with no line terminators
Hash 8b3eca6de652bcdc0553039b4935c1bd
2507b99ded549e29a70a55dadead292cba59a251
c4d4a3bf95f72f4d3231dea134d5168658a50ce4e64a14c0d7280bd088b114ef
GET /r125076/css_built_1/258adbb6e4f3e83cd3b355f84e3fa002_custom.css.gz?v=d815db93211673395142 HTTP/1.1
Host: content.invisioncic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forums.getpaint.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/css
content-length: 1282
date: Wed, 11 Jan 2023 00:00:32 GMT
x-amz-replication-status: COMPLETED
last-modified: Tue, 10 Jan 2023 23:59:14 GMT
etag: "8b3eca6de652bcdc0553039b4935c1bd"
cache-control: public, max-age=31536000
content-encoding: gzip
x-amz-version-id: jcNcyBR7uOGqJUqIy62PZ2EVr3ers5NS
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: eAzydmNufDmc36R0cmtwf5VJ349WznZuzJOZUGziuqJiRr80PQJ1rQ==
age: 1726940
X-Firefox-Spdy: h2
content.invisioncic.com/r125076/javascript_global/root_js_lang_1.js.gz?v=d815db93211675019257
200 OK 33 kB URL HTTP/2 content.invisioncic.com/r125076/javascript_global/root_js_lang_1.js.gz?v=d815db93211675019257
IP
File type ASCII text, with very long lines (65536), with no line terminators
Hash fdf33be5fe150f6b9a9922fb06190336
4aa005c019f65f78b1af5a27f88ce5508b33033e
029ec073b793347e581f47f3b62d2aede20470c525edb8911939d7fda4283358
GET /r125076/javascript_global/root_js_lang_1.js.gz?v=d815db93211675019257 HTTP/1.1
Host: content.invisioncic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forums.getpaint.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
content-length: 33100
date: Sun, 29 Jan 2023 19:07:55 GMT
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 23:59:13 GMT
etag: "fdf33be5fe150f6b9a9922fb06190336"
cache-control: public, max-age=31536000
content-encoding: gzip
x-amz-version-id: A3WIkPoNpShdFKXYdfbLo9pLDw8hQCH3
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: gWZhr6eXXuNiyNCcjUR80qbK8ZHdMZAksKuBQlmPPNGAVdCvgP72wA==
age: 102898
X-Firefox-Spdy: h2
content.invisioncic.com/r125076/javascript_global/root_library.js.gz?v=d815db93211675019257
200 OK 130 kB URL HTTP/2 content.invisioncic.com/r125076/javascript_global/root_library.js.gz?v=d815db93211675019257
IP
File type ASCII text, with very long lines (46244)
Size 130 kB (130156 bytes)
Hash e51bd7f0ae2090c6f05376624e4c8ae0
64707a6398fa7204bf8ad7d26a2a80b9314d9b98
59b5805aa7ab2a4d1d66ba83d31d07285c6ee3f26ffbbff991f42db265da9eeb
GET /r125076/javascript_global/root_library.js.gz?v=d815db93211675019257 HTTP/1.1
Host: content.invisioncic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forums.getpaint.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
content-length: 130156
date: Sun, 29 Jan 2023 19:07:55 GMT
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 23:59:12 GMT
etag: "e51bd7f0ae2090c6f05376624e4c8ae0"
cache-control: public, max-age=31536000
content-encoding: gzip
x-amz-version-id: AhrvHJgadVbrF3JN_qkflNMd6DCTAG10
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: i9x9CGhMx4W4x69pXBrAPbNMGL2HkoPykml1hRBCf0FnpZYKedNh6A==
age: 102898
X-Firefox-Spdy: h2
content.invisioncic.com/r125076/css_built_1/341e4a57816af3ba440d891ca87450ff_framework.css.gz?v=d815db93211673395142
200 OK 58 kB URL HTTP/2 content.invisioncic.com/r125076/css_built_1/341e4a57816af3ba440d891ca87450ff_framework.css.gz?v=d815db93211673395142
IP
File type Unicode text, UTF-8 text, with very long lines (65535), with no line terminators
Hash df58b089b367ea64040d040f338a84e8
3b13a8226d00179a26db3e7ecaf814ad4a1b5fb3
180fa2d38b5c3f53789e9aa03e0e07dba62f9b193edd014552da4976a760b70b
GET /r125076/css_built_1/341e4a57816af3ba440d891ca87450ff_framework.css.gz?v=d815db93211673395142 HTTP/1.1
Host: content.invisioncic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forums.getpaint.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-length: 58487
date: Wed, 11 Jan 2023 00:00:32 GMT
x-amz-replication-status: COMPLETED
last-modified: Tue, 10 Jan 2023 23:59:11 GMT
etag: "df58b089b367ea64040d040f338a84e8"
cache-control: public, max-age=31536000
content-encoding: gzip
x-amz-version-id: lb2zt2Jh31FZ.158SxhEdnmlj7lHg_1H
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: wJYbk1fzpXRItvsELtI4hoE90RTIyTpVW3kV_VweW4QHCyIn8o1Bow==
age: 1726940
X-Firefox-Spdy: h2
content.invisioncic.com/r125076/javascript_core/global_global_core.js.gz?v=d815db93211675019257
200 OK 8.9 kB URL HTTP/2 content.invisioncic.com/r125076/javascript_core/global_global_core.js.gz?v=d815db93211675019257
IP
File type ASCII text, with very long lines (1619)
Hash f4523e965f101c16c9358c090ea59398
d90a0e72c8666838bb4b6515b7708d3eabdee3fa
2ff745cccc56c41b7b510a74f8d5d4efd56ac0abeaff25035d19493469368674
GET /r125076/javascript_core/global_global_core.js.gz?v=d815db93211675019257 HTTP/1.1
Host: content.invisioncic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forums.getpaint.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
content-length: 8929
date: Sun, 29 Jan 2023 19:07:55 GMT
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 23:59:13 GMT
etag: "f4523e965f101c16c9358c090ea59398"
cache-control: public, max-age=31536000
content-encoding: gzip
x-amz-version-id: uvEvXlkqxolm.EKafHEIAJTiLtsRrdaq
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: 4HSP3DiC8-PINBfuJIf1xb3KGGd1Ccv3oFtqgeOR1OmWdkBKdRCZgg==
age: 102898
X-Firefox-Spdy: h2
content.invisioncic.com/r125076/javascript_core/front_front_core.js.gz?v=d815db93211675019257
200 OK 8.8 kB URL HTTP/2 content.invisioncic.com/r125076/javascript_core/front_front_core.js.gz?v=d815db93211675019257
IP
File type ASCII text, with very long lines (1968)
Hash c13112a45e2802ab44156979dd5a8e38
6f7ada92d241b76c2084f63b798fdd08ca849c23
7c32ca8e1bd8a381c141d72e52126cfc5ea05504b8713d6add6a05d29bb216ba
GET /r125076/javascript_core/front_front_core.js.gz?v=d815db93211675019257 HTTP/1.1
Host: content.invisioncic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forums.getpaint.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
content-length: 8846
date: Sun, 29 Jan 2023 19:07:55 GMT
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 23:59:16 GMT
etag: "c13112a45e2802ab44156979dd5a8e38"
cache-control: public, max-age=31536000
content-encoding: gzip
x-amz-version-id: B10hmpbMLZ0NI3RL2KcDRugn1rPbUT7k
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: UlRhVaEQsBuiIpae3dMkrhDFZduEld40yt7VE--mRJV2UrwrEX4V5Q==
age: 102898
X-Firefox-Spdy: h2
content.invisioncic.com/r125076/javascript_forums/front_front_topic.js.gz?v=d815db93211675019257
200 OK 1.3 kB URL HTTP/2 content.invisioncic.com/r125076/javascript_forums/front_front_topic.js.gz?v=d815db93211675019257
IP
File type ASCII text, with very long lines (952)
Hash 702180aafa4f6cf57df069737a132abd
5446db6f79a18297c7493a93d6fb842095af90b6
66228cd903a4b875d6f0773368340076f4826a7fdfc62587b1040d95357403f7
GET /r125076/javascript_forums/front_front_topic.js.gz?v=d815db93211675019257 HTTP/1.1
Host: content.invisioncic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forums.getpaint.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
content-length: 1277
date: Sun, 29 Jan 2023 19:07:55 GMT
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 23:59:21 GMT
etag: "702180aafa4f6cf57df069737a132abd"
cache-control: public, max-age=31536000
content-encoding: gzip
x-amz-version-id: eaz_RzMwypLKZRUW36m6lGSSANZ5mDsK
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: WsGC6AAMqucMHjhaFznEIOH39TyGsUjsHxHNFc1IZ_q4Ncsotc0WRg==
age: 102898
X-Firefox-Spdy: h2
content.invisioncic.com/r125076/javascript_cloud/front_front_realtime.js.gz?v=d815db93211675019257
200 OK 3.5 kB URL HTTP/2 content.invisioncic.com/r125076/javascript_cloud/front_front_realtime.js.gz?v=d815db93211675019257
IP
File type ASCII text, with very long lines (805)
Hash 5c5cef1a143c60ca810916a7bd1f2117
3b438266929338c670f9d36e10862e04eced2549
146008add2ba689a347b887dd1b13a8016fdacad1848e83da4984e069ca1221f
GET /r125076/javascript_cloud/front_front_realtime.js.gz?v=d815db93211675019257 HTTP/1.1
Host: content.invisioncic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forums.getpaint.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
content-length: 3511
date: Sun, 29 Jan 2023 19:07:55 GMT
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 23:59:16 GMT
etag: "5c5cef1a143c60ca810916a7bd1f2117"
cache-control: public, max-age=31536000
content-encoding: gzip
x-amz-version-id: yjA14XdYKZQ9_dvvzWceI_TYEpU9om8O
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: gggUgX9OmIeB-BjxqDKv4CcHRM_revqIju36dE9tpzK0GDA9rgNS7Q==
age: 102898
X-Firefox-Spdy: h2
content.invisioncic.com/r125076/javascript_global/root_map.js.gz?v=d815db93211675019257
200 OK 336 B URL HTTP/2 content.invisioncic.com/r125076/javascript_global/root_map.js.gz?v=d815db93211675019257
IP
File type ASCII text, with very long lines (1829), with no line terminators
Hash 0b4456e500b161f275d35f931dad2d43
6fae4a42f74026fdbd234cedb11636d30fd34b2e
40398b9a5dcbfed8531e4162e76237e5b2ed1d5c94f387592d5c97a3f491db6a
GET /r125076/javascript_global/root_map.js.gz?v=d815db93211675019257 HTTP/1.1
Host: content.invisioncic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forums.getpaint.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
content-length: 336
date: Sun, 29 Jan 2023 19:07:55 GMT
x-amz-replication-status: PENDING
last-modified: Sun, 29 Jan 2023 19:07:38 GMT
etag: "0b4456e500b161f275d35f931dad2d43"
cache-control: public, max-age=31536000
content-encoding: gzip
x-amz-version-id: qsv60jatE4gIIaVifBstYxuksJVA7HTL
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: DH4jjLFdIYvtAuqghHLFcjQhbglTT-eVV5SLbexnkxYJy9Gj6dWkGQ==
age: 102898
X-Firefox-Spdy: h2
content.invisioncic.com/r125076/javascript_cloud/front_app.js.gz?v=d815db93211675019257
200 OK 1.6 kB URL HTTP/2 content.invisioncic.com/r125076/javascript_cloud/front_app.js.gz?v=d815db93211675019257
IP
File type ASCII text, with very long lines (1061)
Hash 5f71be5624b83f63792a6c0888b86306
f8245e6f98ca18e8b6ff1ba8dc58f05a41687016
2acf3ed70ae2fde03eb773b642a4652220f3de0d905871d1de73b3882c3c1b93
GET /r125076/javascript_cloud/front_app.js.gz?v=d815db93211675019257 HTTP/1.1
Host: content.invisioncic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forums.getpaint.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
content-length: 1569
date: Sun, 29 Jan 2023 19:07:55 GMT
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 23:59:16 GMT
etag: "5f71be5624b83f63792a6c0888b86306"
cache-control: public, max-age=31536000
content-encoding: gzip
x-amz-version-id: McauBi5JvvzK_O2_Yrs9MgX5JBX.55v4
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: L3XqxdHsLoGAdJw5fe9DRFQaPJp3uF8zC_fsz-1aWI8awfATPr_9WQ==
age: 102898
X-Firefox-Spdy: h2
content.invisioncic.com/r125076/emoticons/pdn4icons_boltbait.tongue.png
200 OK 436 B URL HTTP/2 content.invisioncic.com/r125076/emoticons/pdn4icons_boltbait.tongue.png
IP
File type PNG image data, 15 x 15, 8-bit colormap, non-interlaced\012- data
Hash 86b55b1a363adaebae2dd0084fdf8d63
9962a75697ea0e08b3606f9fb645caf5c7a1561f
d9d31bc4b2d830ae3622b78aee9d493f8e9092d4db6940f6caa79eb6764d8ad3
GET /r125076/emoticons/pdn4icons_boltbait.tongue.png HTTP/1.1
Host: content.invisioncic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forums.getpaint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 436
x-amz-replication-status: COMPLETED
last-modified: Wed, 02 Aug 2017 21:57:03 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Mon, 30 Jan 2023 12:20:29 GMT
etag: "86b55b1a363adaebae2dd0084fdf8d63"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: lFZ3NlTsIGTPPD0nX0Bo4V0Vv0XxyUIbV7p1Qm1dhVloIFDj5e43yQ==
age: 40944
X-Firefox-Spdy: h2
content.invisioncic.com/r125076/emoticons/pdn4icons_boltbait.wink.png
200 OK 498 B URL HTTP/2 content.invisioncic.com/r125076/emoticons/pdn4icons_boltbait.wink.png
IP
File type PNG image data, 15 x 15, 8-bit colormap, non-interlaced\012- data
Hash 93a6349fc6a5a5f6cbfe55404fb257f6
d3ca0b194d57c79a037076907a5241d92d834316
ee19fdc2b3bc3dbb3a3d4e5503e5b0a0d9d132ca3f8e607b166a6199e5fb7953
GET /r125076/emoticons/pdn4icons_boltbait.wink.png HTTP/1.1
Host: content.invisioncic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forums.getpaint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 498
x-amz-replication-status: COMPLETED
last-modified: Wed, 02 Aug 2017 21:57:03 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Mon, 30 Jan 2023 10:32:53 GMT
etag: "93a6349fc6a5a5f6cbfe55404fb257f6"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: JiQQyMNlFDRar1TMeIqwK0FXnc1VqlPQG6tLN-BCoqoOUkaqy--6DQ==
age: 47400
X-Firefox-Spdy: h2
content.invisioncic.com/r125076/javascript_global/root_front.js.gz?v=d815db93211675019257
200 OK 23 kB URL HTTP/2 content.invisioncic.com/r125076/javascript_global/root_front.js.gz?v=d815db93211675019257
IP
File type Unicode text, UTF-8 text, with very long lines (3172)
Hash 84492f21da728f23c8a7b1af76b1ad27
4902e6ce11b57ceefa9de345f3910f0817058f61
93db180d60307d5af529af41c726eb8f01cc8eecf3dc38df06c9891b45f8c58f
GET /r125076/javascript_global/root_front.js.gz?v=d815db93211675019257 HTTP/1.1
Host: content.invisioncic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forums.getpaint.net/
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: text/javascript
content-length: 22795
date: Sun, 29 Jan 2023 19:07:55 GMT
x-amz-replication-status: COMPLETED
last-modified: Tue, 24 Jan 2023 23:59:17 GMT
etag: "84492f21da728f23c8a7b1af76b1ad27"
cache-control: public, max-age=31536000
content-encoding: gzip
x-amz-version-id: vU.gp3mcoiukMUpC2P6wwvOZGBa5x.bE
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: wYxRoX3oJEVUKVgPwHByk7n7ZskwLtLx0L2smxVWrsSXPVxnMmSY6Q==
age: 102898
X-Firefox-Spdy: h2
content.invisioncic.com/r125076/team_admin.png
200 OK 673 B URL HTTP/2 content.invisioncic.com/r125076/team_admin.png
IP
File type PNG image data, 81 x 18, 8-bit colormap, non-interlaced\012- data
Hash d80e843aa77cc833338978d134cac525
6d549d0203eff145c0f1d3a455452709e2841293
a7ec21cf99d2007bdc80f4f0a7e48c2a124b2437ed7aae66e9054393de331438
GET /r125076/team_admin.png HTTP/1.1
Host: content.invisioncic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forums.getpaint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 673
x-amz-replication-status: COMPLETED
last-modified: Wed, 02 Aug 2017 22:02:11 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Mon, 30 Jan 2023 07:40:11 GMT
etag: "d80e843aa77cc833338978d134cac525"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: htGa7JX_NvmoAQcsO9rLPZPWl2HW4lsxjP0cB8ko8o9wH3IOYaNcbQ==
age: 57762
X-Firefox-Spdy: h2
content.invisioncic.com/r125076/emoticons/default_pdn4icons.MenuUtilitiesSettingsIcon.png
200 OK 611 B URL HTTP/2 content.invisioncic.com/r125076/emoticons/default_pdn4icons.MenuUtilitiesSettingsIcon.png
IP
File type PNG image data, 16 x 16, 8-bit colormap, non-interlaced\012- data
Hash 5607c1c4b3fcbb6c1621b176c94b5691
8b5bc3623ac32d998550ca491c376bded7cd9954
06b0e00c677c9f567519a8111e1953ff4f08af56b28a04aeef95bd4aa938ec7a
GET /r125076/emoticons/default_pdn4icons.MenuUtilitiesSettingsIcon.png HTTP/1.1
Host: content.invisioncic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forums.getpaint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
content-type: image/png
content-length: 611
x-amz-replication-status: COMPLETED
last-modified: Wed, 02 Aug 2017 21:57:02 GMT
x-amz-version-id: null
accept-ranges: bytes
server: AmazonS3
date: Mon, 30 Jan 2023 23:42:52 GMT
etag: "5607c1c4b3fcbb6c1621b176c94b5691"
vary: Accept-Encoding
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: XPOsQjYZeH0LrQj5ZM21_0-Bwy1zdCgQkHumVmEgKYRC998ikvfG9A==
age: 38331
X-Firefox-Spdy: h2
content.invisioncic.com/r125076/css_built_1/5a0da001ccc2200dc5625c3f3934497d_core_responsive.css.gz?v=d815db93211673395142
200 OK 1.2 kB URL HTTP/2 content.invisioncic.com/r125076/css_built_1/5a0da001ccc2200dc5625c3f3934497d_core_responsive.css.gz?v=d815db93211673395142
IP
File type ASCII text, with very long lines (5076), with no line terminators
Hash 5c3c523b949cbb61acd0828c69748124
270c16d2de9b367251bd3c1a60654e57e5628fe0
c767dff58319bf79500d0df8334e2817d39f0560febfe5af0a4df82b383a8b71
GET /r125076/css_built_1/5a0da001ccc2200dc5625c3f3934497d_core_responsive.css.gz?v=d815db93211673395142 HTTP/1.1
Host: content.invisioncic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forums.getpaint.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-length: 1204
date: Wed, 11 Jan 2023 00:00:32 GMT
x-amz-replication-status: COMPLETED
last-modified: Tue, 10 Jan 2023 23:59:12 GMT
etag: "5c3c523b949cbb61acd0828c69748124"
cache-control: public, max-age=31536000
content-encoding: gzip
x-amz-version-id: 2aTWDSBCUcp9AQXJtm5oolvaY46RoS81
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: hY4u5qCTw6aYXQaJ33owSYM6KECsyYpEtFxywcEkXJwGWExHfOpakg==
age: 1726942
X-Firefox-Spdy: h2
content.invisioncic.com/r125076/css_built_1/05e81b71abe4f22d6eb8d1a929494829_responsive.css.gz?v=d815db93211673395142
200 OK 6.8 kB URL HTTP/2 content.invisioncic.com/r125076/css_built_1/05e81b71abe4f22d6eb8d1a929494829_responsive.css.gz?v=d815db93211673395142
IP
File type ASCII text, with very long lines (36539), with no line terminators
Hash 2d88591ad408ecd11c6db03423518b1d
8d365c18b4fcabcc77c4e86d4746ea687ec4af26
2cf76e711edde0458b7f705f470ff74491277e00402b3a9d50a76093e1ee8613
GET /r125076/css_built_1/05e81b71abe4f22d6eb8d1a929494829_responsive.css.gz?v=d815db93211673395142 HTTP/1.1
Host: content.invisioncic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forums.getpaint.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-length: 6788
date: Wed, 11 Jan 2023 00:00:32 GMT
x-amz-replication-status: COMPLETED
last-modified: Tue, 10 Jan 2023 23:59:11 GMT
etag: "2d88591ad408ecd11c6db03423518b1d"
cache-control: public, max-age=31536000
content-encoding: gzip
x-amz-version-id: FcOmp9FZbyraLbaC4Ik3dso.MTFmJe3v
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: FrPEMsLKYtu2c1t27t8S3FMZofpDhj7U4rkfJ0GFXzdqe8rtyKuSJg==
age: 1726942
X-Firefox-Spdy: h2
content.invisioncic.com/r125076/css_built_1/76e62c573090645fb99a15a363d8620e_forums_responsive.css.gz?v=d815db93211673395142
200 OK 1.4 kB URL HTTP/2 content.invisioncic.com/r125076/css_built_1/76e62c573090645fb99a15a363d8620e_forums_responsive.css.gz?v=d815db93211673395142
IP
File type ASCII text, with very long lines (6702), with no line terminators
Hash fd6252f9621681a87b55e87c32a1c96d
f9dbdbc2e0ff693de784d68a6d39005ebd3b9526
2ffb0914be17e35f640be65797c661cffa37e8d24e77550a6bd6edb1d3cf1956
GET /r125076/css_built_1/76e62c573090645fb99a15a363d8620e_forums_responsive.css.gz?v=d815db93211673395142 HTTP/1.1
Host: content.invisioncic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forums.getpaint.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-length: 1435
date: Wed, 11 Jan 2023 00:00:32 GMT
x-amz-replication-status: COMPLETED
last-modified: Tue, 10 Jan 2023 23:59:12 GMT
etag: "fd6252f9621681a87b55e87c32a1c96d"
cache-control: public, max-age=31536000
content-encoding: gzip
x-amz-version-id: 5xisaq9zYKEzH0S4mwhUWBcjh7W3IcVQ
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: jeA5aSHVGIt1YTtSkiyMzM5-IX5ojxSFMaOZ9YWIJpFIGIsVOTe_0w==
age: 1726942
X-Firefox-Spdy: h2
ocsp.sca1b.amazontrust.com/
200 OK 471 B URL HTTP/1.1 ocsp.sca1b.amazontrust.com/
IP
Hash 4fbb011fad79f82d1039154b5c1c01c5
fecad877d5337b0524f176ae0bd0e8ab8a6b214a
c7db6caee3181a8c73f79751c2ae42212a19be87210296a6466e599eae116369
POST / HTTP/1.1
Host: ocsp.sca1b.amazontrust.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Content-Length: 471
Connection: keep-alive
Accept-Ranges: bytes
Cache-Control: 'max-age=158059'
Date: Mon, 30 Jan 2023 23:42:53 GMT
Last-Modified: Mon, 30 Jan 2023 22:38:03 GMT
Server: ECS (bsa/EB1D)
X-Cache: Miss from cloudfront
Via: 1.1 60929bddfcfe8b3a510a9502ad6d8742.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: AW8qOiz0NugZtfHFSZezgGCR6iX6Pzcl-9QL7l7RMWsvU9UCIyzL0g==
Age: 3890
i406.photobucket.com/albums/pp143/Boudewijn_01/yhsjjie.png
301 Moved Permanently 167 B URL HTTP/1.1 i406.photobucket.com/albums/pp143/Boudewijn_01/yhsjjie.png
IP
File type HTML document text\012- HTML document text\012- HTML document, ASCII text, with CRLF line terminators
Hash f5d40b7259645010f9a248858ad14178
b3051d17a6ec8c9e166bf09a62b48261ab86957b
7f5007068d2b56ea9735e2490d60cff2e72cae312024ac1f6c91158eba47d05d
GET /albums/pp143/Boudewijn_01/yhsjjie.png HTTP/1.1
Host: i406.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Server: CloudFront
Date: Mon, 30 Jan 2023 23:42:53 GMT
Content-Type: text/html
Content-Length: 167
Connection: keep-alive
Location: https://i406.photobucket.com/albums/pp143/Boudewijn_01/yhsjjie.png
X-Cache: Redirect from cloudfront
Via: 1.1 98794c1dec0d4e7b10ddf0faa094cf94.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-P1
X-Amz-Cf-Id: MOl6Sw-mgxiAP652-vVmHVREHnzl99ZOfFwbglMmK45ua0aI9jMPFg==
Vary: Origin
dl.dropbox.com/u/2987/PaintDotNet/signature.png
301 Moved Permanently 0 B URL HTTP/1.1 dl.dropbox.com/u/2987/PaintDotNet/signature.png
IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/2987/PaintDotNet/signature.png HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
location: https://dl.dropbox.com/u/2987/PaintDotNet/signature.png
date: Mon, 30 Jan 2023 23:42:53 GMT
server: envoy
x-dropbox-request-id: e6934a60a29d43c0ace40c804f3fb389
content-length: 0
imgur.com/KaHuc.png
301 Moved Permanently 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /KaHuc.png HTTP/1.1
Host: imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://imgur.com/KaHuc.png
Accept-Ranges: bytes
Date: Mon, 30 Jan 2023 23:42:53 GMT
X-Served-By: cache-bma1647-BMA
X-Cache: HIT
X-Cache-Hits: 0
Server: cat factory 1.0
Strict-Transport-Security: max-age=300
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
X-Frame-Options: DENY
Access-Control-Allow-Origin: https://imgur.com
Access-Control-Allow-Credentials: false
i.imgur.com/AFyJv.png
301 Moved Permanently 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /AFyJv.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://i.imgur.com/AFyJv.png
Accept-Ranges: bytes
Date: Mon, 30 Jan 2023 23:42:53 GMT
X-Served-By: cache-hel1410031-HEL
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1675122173.183406,VS0,VE0
Strict-Transport-Security: max-age=300
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0
i.imgur.com/O9M0N.png
301 Moved Permanently 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /O9M0N.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://i.imgur.com/O9M0N.png
Accept-Ranges: bytes
Date: Mon, 30 Jan 2023 23:42:53 GMT
X-Served-By: cache-hel1410029-HEL
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1675122173.182720,VS0,VE0
Strict-Transport-Security: max-age=300
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0
i.imgur.com/1ELUC.png
301 Moved Permanently 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /1ELUC.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://i.imgur.com/1ELUC.png
Accept-Ranges: bytes
Date: Mon, 30 Jan 2023 23:42:53 GMT
X-Served-By: cache-hel1410033-HEL
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1675122173.181842,VS0,VE0
Strict-Transport-Security: max-age=300
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0
i.imgur.com/mtxO5.png
301 Moved Permanently 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /mtxO5.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://i.imgur.com/mtxO5.png
Accept-Ranges: bytes
Date: Mon, 30 Jan 2023 23:42:53 GMT
X-Served-By: cache-hel1410022-HEL
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1675122173.184891,VS0,VE0
Strict-Transport-Security: max-age=300
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0
i.imgur.com/7UobZ.png
301 Moved Permanently 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /7UobZ.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://i.imgur.com/7UobZ.png
Accept-Ranges: bytes
Date: Mon, 30 Jan 2023 23:42:53 GMT
X-Served-By: cache-hel1410027-HEL
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1675122173.184078,VS0,VE0
Strict-Transport-Security: max-age=300
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0
i.imgur.com/7hFyp.png
301 Moved Permanently 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /7hFyp.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://i.imgur.com/7hFyp.png
Accept-Ranges: bytes
Date: Mon, 30 Jan 2023 23:42:53 GMT
X-Served-By: cache-hel1410028-HEL
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1675122173.183795,VS0,VE0
Strict-Transport-Security: max-age=300
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 40bac282ee9730b7a7fde839fcf58736
be00063ec5c760560f34663d0a6a9cad87cfebe4
45b83537d8621d3c4a7c046a9b78f6745977c359db2868d720f19dbb0eb80d3d
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:42:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
i.imgur.com/NnvNf.png
301 Moved Permanently 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /NnvNf.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://i.imgur.com/NnvNf.png
Accept-Ranges: bytes
Date: Mon, 30 Jan 2023 23:42:53 GMT
X-Served-By: cache-hel1410022-HEL
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1675122173.231047,VS0,VE0
Strict-Transport-Security: max-age=300
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0
i.imgur.com/aP5mY.png
301 Moved Permanently 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /aP5mY.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://i.imgur.com/aP5mY.png
Accept-Ranges: bytes
Date: Mon, 30 Jan 2023 23:42:53 GMT
X-Served-By: cache-hel1410020-HEL
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1675122173.239354,VS0,VE0
Strict-Transport-Security: max-age=300
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0
i.imgur.com/iIKz0.png
301 Moved Permanently 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /iIKz0.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 301 Moved Permanently
Connection: close
Content-Length: 0
Retry-After: 0
Location: https://i.imgur.com/iIKz0.png
Accept-Ranges: bytes
Date: Mon, 30 Jan 2023 23:42:53 GMT
X-Served-By: cache-hel1410020-HEL
X-Cache: HIT
X-Cache-Hits: 0
X-Timer: S1675122173.252907,VS0,VE0
Strict-Transport-Security: max-age=300
Access-Control-Allow-Methods: GET, OPTIONS
Access-Control-Allow-Origin: *
Server: cat factory 1.0
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:42:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
200 OK 38 kB URL HTTP/2 fonts.gstatic.com/s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 37924, version 1.0\012- data
Hash e08be6d5d433944f7ad52902e4d24db5
e2600c1d60d12d397b3ee44411a021231d71e974
450f3ba4e47ee174bd9692b396f264b907d37d2528f53911760f3d0edb785f7e
GET /s/inter/v12/UcC73FwrK3iLTeHuS_fvQtMwCp50KnMa1ZL7.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://forums.getpaint.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 37924
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 09:44:08 GMT
expires: Sun, 28 Jan 2024 09:44:08 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 11 Jul 2022 20:54:46 GMT
content-type: font/woff2
age: 223125
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
www.isimonbrown.co.uk/files/tracker.php
302 Found 191 B URL HTTP/1.1 www.isimonbrown.co.uk/files/tracker.php
IP
File type HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document, ASCII text
Hash 76b5d6cb99916210c0711daa680d62dd
0da08f4204d56ba01fb3045258bd0de71eb2e6ba
6f47c1fcd7444d7acda8b02bd39883e109b9f96f80c7ac1f98994c619138a46c
GET /files/tracker.php HTTP/1.1
Host: www.isimonbrown.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 302 Found
Content-Type: text/html; charset=utf-8
Location: http://www.isimonbrown.co.uk/static/1px.png
Strict-Transport-Security: max-age=31536000; includeSubDomains
Content-Encoding: gzip
X-Cloud-Trace-Context: 9a1210f5c33c9552c699012f2d706a85;o=1
Vary: Accept-Encoding
Date: Mon, 30 Jan 2023 23:42:53 GMT
Server: Google Frontend
Cache-Control: private
Content-Length: 191
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash f075625a67cefc01c034a3c732ec8023
c3ef563fbf1cf30f75fc931f82426a0f859ccb6d
75ce941806680157fcca91d6074496cbbc7cdcf6da28fa35384273bf9a76d588
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:42:53 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1ab93dfe6004b863c808db68667a2bcf
e7d07be29dd8fee6be47fb492aade78b1362d24a
10c5a2390e2dc39f73f1a5da40ab456ee99edb6a20212a4b47b529926606c2b7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "10C5A2390E2DC39F73F1A5DA40AB456EE99EDB6A20212A4B47B529926606C2B7"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1927
Expires: Tue, 31 Jan 2023 00:15:00 GMT
Date: Mon, 30 Jan 2023 23:42:53 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 1ab93dfe6004b863c808db68667a2bcf
e7d07be29dd8fee6be47fb492aade78b1362d24a
10c5a2390e2dc39f73f1a5da40ab456ee99edb6a20212a4b47b529926606c2b7
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "10C5A2390E2DC39F73F1A5DA40AB456EE99EDB6A20212A4B47B529926606C2B7"
Last-Modified: Mon, 30 Jan 2023 05:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=1927
Expires: Tue, 31 Jan 2023 00:15:00 GMT
Date: Mon, 30 Jan 2023 23:42:53 GMT
Connection: keep-alive
ocsp.digicert.com/
200 OK 471 B IP
Hash 43126b2da62ff4a520b00c95788d4a9e
9a7a90ad753a93f6e59ab6d55e2a344669466886
b1d5613bc6f6ec57673a1d66a8e748037dae441a837d1157040b1936029fddaf
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 2969
Cache-Control: max-age=169279
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:42:53 GMT
Etag: "63d83ca3-1d7"
Expires: Wed, 01 Feb 2023 22:44:12 GMT
Last-Modified: Mon, 30 Jan 2023 21:54:43 GMT
Server: ECS (ska/F6FE)
X-Cache: HIT
Content-Length: 471
i406.photobucket.com/albums/pp143/Boudewijn_01/yhsjjie.png
200 OK 12 kB URL HTTP/2 i406.photobucket.com/albums/pp143/Boudewijn_01/yhsjjie.png
IP
File type RIFF (little-endian) data, Web/P image\012- data
Hash 7aff741517cd4b362cbd5a104e3cbfc4
c734851c123df8479ace585f01a98389afa6a21e
2d0dd762e333ed6f04582e55d68ae88cddeb82e4b6bce8b2b63375b7f0a90c5b
GET /albums/pp143/Boudewijn_01/yhsjjie.png HTTP/1.1
Host: i406.photobucket.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: image/webp
content-length: 12028
date: Wed, 25 Jan 2023 05:11:23 GMT
cache-control: max-age=31536000, public
content-disposition: inline; filename="yhsjjie.webp"
content-security-policy: script-src 'none'
expires: Thu, 25 Jan 2024 05:11:23 GMT
server: photobucket
x-amzn-trace-id: Root=1-63d0b9fa-408234f06521827d3f8a5b6e
x-request-id: dnO3-8CEpxHo3zX_ldnVT
x-cache: Hit from cloudfront
via: 1.1 0e39dca74306d7aab723ed3d73dbfbb4.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
x-amz-cf-id: _hx6pOE-YfyvpO7WWGc3MQIjBJtTC_IXJaEMiuzRNKwhNfHJnXWYLQ==
age: 498690
vary: Accept, Origin
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash 5ddf6e7f30e557a314ad2cd65ceab02b
82b505d74593684fadf25ffcd9e32c233e4f2346
3f513cdcec3568e3e43b7083e941950babf29f80447d91f4e9d1dea4efbe1963
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "3F513CDCEC3568E3E43B7083E941950BABF29F80447D91F4E9D1DEA4EFBE1963"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=10033
Expires: Tue, 31 Jan 2023 02:30:06 GMT
Date: Mon, 30 Jan 2023 23:42:53 GMT
Connection: keep-alive
imgur.com/KaHuc.png
301 Moved Permanently 0 B IP
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET /KaHuc.png HTTP/1.1
Host: imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 301 Moved Permanently
retry-after: 0
location: https://i.imgur.com/KaHuc.png
accept-ranges: bytes
date: Mon, 30 Jan 2023 23:42:53 GMT
x-served-by: cache-bma1669-BMA
x-cache: HIT
x-cache-hits: 0
x-timer: S1675122174.551104,VS0,VE0
server: cat factory 1.0
strict-transport-security: max-age=300
cache-control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
x-frame-options: DENY
access-control-allow-origin: https://imgur.com
access-control-allow-credentials: false
content-length: 0
X-Firefox-Spdy: h2
i.imgur.com/iIKz0.png
200 OK 12 kB IP
File type PNG image data, 196 x 132, 8-bit/color RGBA, non-interlaced\012- data
Hash e163ec8144ff6a8ef441ac43f3c4206f
006a6bf9a4b98bec9c0d9887e6052bfbc41f92c2
d239ed8032786c1accecb687669c09ac1524dd1a20947e345965c9f429259779
GET /iIKz0.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 06 Nov 2011 04:22:55 GMT
etag: "e163ec8144ff6a8ef441ac43f3c4206f"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Mon, 30 Jan 2023 23:42:53 GMT
age: 2278633
x-served-by: cache-iad-kiad7000057-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 101, 7
x-timer: S1675122174.561650,VS0,VE0
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 11783
X-Firefox-Spdy: h2
i.imgur.com/NnvNf.png
200 OK 12 kB IP
File type PNG image data, 157 x 137, 8-bit/color RGBA, non-interlaced\012- data
Hash 41308b767630beec113306887441f63e
0c11ec56a8bbfea8b394add5543c34c236e6b1e9
42bec70041b23ef60bc5a18b9e6c2e5289c33ab4be85264a9d3c4ced3afebf88
GET /NnvNf.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Sun, 13 Nov 2011 13:02:38 GMT
etag: "41308b767630beec113306887441f63e"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Mon, 30 Jan 2023 23:42:53 GMT
age: 2730508
x-served-by: cache-iad-kcgs7200082-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 16, 1
x-timer: S1675122174.561703,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 12534
X-Firefox-Spdy: h2
i.imgur.com/aP5mY.png
200 OK 8.1 kB IP
File type PNG image data, 160 x 130, 8-bit/color RGBA, non-interlaced\012- data
Hash a0cd2b81274d9a3419283d2fe803787b
21341d66899578cbe70672585398b3e8d69b6d6e
fec605bc949c02e70b042539948b273f678fa8bf31d1444659b670b96b44dc77
GET /aP5mY.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Mon, 07 Nov 2011 02:38:14 GMT
etag: "a0cd2b81274d9a3419283d2fe803787b"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Mon, 30 Jan 2023 23:42:53 GMT
age: 549521
x-served-by: cache-iad-kjyo7100076-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 3, 1
x-timer: S1675122174.561687,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 8129
X-Firefox-Spdy: h2
i.imgur.com/1ELUC.png
200 OK 10 kB IP
File type PNG image data, 189 x 123, 8-bit/color RGBA, non-interlaced\012- data
Hash c0addbec75c8cae7ca380d46f20ffe0d
72aa983a93126f07879e534040bc509f74eeb54d
fc41bb5a7ef3b85a07e9b3b53ca5cfe34a7907be26033eab336f09053f689ab0
GET /1ELUC.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 07 Nov 2011 00:24:08 GMT
etag: "c0addbec75c8cae7ca380d46f20ffe0d"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Mon, 30 Jan 2023 23:42:53 GMT
age: 7824294
x-served-by: cache-iad-kiad7000068-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 1878, 1
x-timer: S1675122174.563157,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 10025
X-Firefox-Spdy: h2
i.imgur.com/mtxO5.png
200 OK 7.4 kB IP
File type PNG image data, 176 x 136, 8-bit/color RGBA, non-interlaced\012- data
Hash d51f45f97a92c8cf7fe68cfd79fb586e
b9fdd9988a8047318a42c0300995a26362738254
2b60eab6bae7c6544c7a317828c5b424076222dd8992769407cc6ee16c2bfefa
GET /mtxO5.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 07 Nov 2011 19:27:42 GMT
etag: "d51f45f97a92c8cf7fe68cfd79fb586e"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Mon, 30 Jan 2023 23:42:53 GMT
age: 2747112
x-served-by: cache-iad-kcgs7200063-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 2, 1
x-timer: S1675122174.568613,VS0,VE2
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 7448
X-Firefox-Spdy: h2
i.imgur.com/7UobZ.png
200 OK 21 kB IP
File type PNG image data, 137 x 128, 8-bit/color RGBA, non-interlaced\012- data
Hash 86302798511801ac42e3bd339ab4347d
1d26e39d50e50cb0c85d1875d68cbb029eeb6c47
8793dc40a59776aff77221c5e778a5c09f1011dee3b8c22b4bd83048a2021e90
GET /7UobZ.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Mon, 07 Nov 2011 22:54:05 GMT
etag: "86302798511801ac42e3bd339ab4347d"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Mon, 30 Jan 2023 23:42:53 GMT
age: 1844600
x-served-by: cache-iad-kiad7000147-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 82, 1
x-timer: S1675122174.568609,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 21321
X-Firefox-Spdy: h2
i.imgur.com/7hFyp.png
200 OK 8.3 kB IP
File type PNG image data, 198 x 135, 8-bit/color RGBA, non-interlaced\012- data
Hash aaadf456a38e9ff23821a562a25323b5
09f55b1ba47832ddbf9e737526b11e5ea87c4b51
9049533d7b39713bd134e8873e3445eae527ef6c8acefad283216b3473d6238e
GET /7hFyp.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Sun, 06 Nov 2011 05:13:13 GMT
etag: "aaadf456a38e9ff23821a562a25323b5"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Mon, 30 Jan 2023 23:42:53 GMT
age: 6012812
x-served-by: cache-iad-kiad7000134-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 59, 1
x-timer: S1675122174.571183,VS0,VE1
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 8339
X-Firefox-Spdy: h2
i.imgur.com/KaHuc.png
200 OK 101 kB IP
File type PNG image data, 499 x 150, 8-bit/color RGB, non-interlaced\012- data
Size 101 kB (101142 bytes)
Hash a1db2fe83c938125997cd1e438aba2b1
6b26d7d11fab7292d684cf69a279ddc4da831751
c4618efc6ceb43533fc1fd9024d2deaf0a38993c9367cf68f911a4cafdf14bab
GET /KaHuc.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
last-modified: Fri, 11 Nov 2011 10:31:40 GMT
etag: "a1db2fe83c938125997cd1e438aba2b1"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Mon, 30 Jan 2023 23:42:53 GMT
age: 2717134
x-served-by: cache-iad-kiad7000114-IAD, cache-hel1410020-HEL
x-cache: HIT, HIT
x-cache-hits: 93, 6
x-timer: S1675122174.589624,VS0,VE0
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 101142
X-Firefox-Spdy: h2
i.imgur.com/O9M0N.png
200 OK 35 kB IP
File type PNG image data, 239 x 137, 8-bit/color RGBA, non-interlaced\012- data
Hash 78244ecc7289d656ddbb3406c2b3105a
fa171bb6dc5cf22ef4da2e089bd5a6d244727838
d7f9129cf798e74bd767daa745536dde2e6719c0d78922cf4fdf9397f1abf985
GET /O9M0N.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Fri, 11 Nov 2011 07:43:22 GMT
etag: "78244ecc7289d656ddbb3406c2b3105a"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Mon, 30 Jan 2023 23:42:53 GMT
age: 2227206
x-served-by: cache-iad-kiad7000093-IAD, cache-hel1410020-HEL
x-cache: HIT, MISS
x-cache-hits: 104, 0
x-timer: S1675122174.561660,VS0,VE97
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 35106
X-Firefox-Spdy: h2
i.imgur.com/AFyJv.png
200 OK 19 kB IP
File type PNG image data, 236 x 134, 8-bit/color RGBA, non-interlaced\012- data
Hash eee73d26a6dbc6489aec002ea4161dec
20215c2a9ddf4dd2aba85df12df75f05b5dfcf92
489dc13e27c0fa58ec211c197d44fe3bfd217802212434bc191167228d8eaec7
GET /AFyJv.png HTTP/1.1
Host: i.imgur.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
last-modified: Sun, 06 Nov 2011 02:32:16 GMT
etag: "eee73d26a6dbc6489aec002ea4161dec"
content-type: image/png
cache-control: public, max-age=31536000
accept-ranges: bytes
date: Mon, 30 Jan 2023 23:42:53 GMT
age: 2278633
x-served-by: cache-iad-kcgs7200149-IAD, cache-hel1410020-HEL
x-cache: HIT, MISS
x-cache-hits: 125, 0
x-timer: S1675122174.561718,VS0,VE97
strict-transport-security: max-age=300
access-control-allow-methods: GET, OPTIONS
access-control-allow-origin: *
server: cat factory 1.0
x-content-type-options: nosniff
content-length: 18640
X-Firefox-Spdy: h2
www.isimonbrown.co.uk/static/1px.png
200 OK 154 B URL HTTP/1.1 www.isimonbrown.co.uk/static/1px.png
IP
File type PNG image data, 1 x 1, 8-bit/color RGBA, non-interlaced\012- data
Hash ada42ea464393b2873d7aa6e1f822ef7
7ad81c55a11d4a0c337b0d32896e1444e921c30b
5e304e02592539ae9aabcc10c3d5f3725df174ed014de1870b802213ca57eab4
GET /static/1px.png HTTP/1.1
Host: www.isimonbrown.co.uk
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
HTTP/1.1 200 OK
Content-Type: image/png
Last-Modified: Sat, 30 May 2020 13:47:47 GMT
Cache-Control: public, max-age=31536000
Expires: Tue, 30 Jan 2024 23:42:53 GMT
ETag: "flask-1590846467.0-154-3057129197"
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Cloud-Trace-Context: 9cf49ab67bfbb2d5eb14740aa45d8ecf
Date: Mon, 30 Jan 2023 23:42:53 GMT
Server: Google Frontend
Content-Length: 154
boltbait.com/d.png
200 OK 20 kB IP
File type PNG image data, 103 x 116, 8-bit/color RGBA, non-interlaced\012- data
Hash 71d0121e221a0352908d06edebf0b9b9
5037cb3a223d75581456c03af2da031d5d32f3c2
d1965bfc6bbdcf0e21ea78c7b7f3df98b276dd10ae5ea8e89ece7f5b4cd6bed5
GET /d.png HTTP/1.1
Host: boltbait.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forums.getpaint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache,public
content-type: image/png
last-modified: Wed, 31 Oct 2018 22:21:16 GMT
accept-ranges: bytes
etag: "0d610a6871d41:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Mon, 30 Jan 2023 23:43:44 GMT
content-length: 19817
X-Firefox-Spdy: h2
boltbait.com/p.png
200 OK 25 kB IP
File type PNG image data, 111 x 116, 8-bit/color RGBA, non-interlaced\012- data
Hash 164d008112e79a304208e63ce86e8bde
4e4ed14458b62696bf9714764b3b1c56b1a665d1
b64c33fafffe4cf0a6c8b832d8ba3a1ca059a5141cf67dec601dbcfeec0f9fef
GET /p.png HTTP/1.1
Host: boltbait.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forums.getpaint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache,public
content-type: image/png
last-modified: Wed, 31 Oct 2018 22:21:16 GMT
accept-ranges: bytes
etag: "0d610a6871d41:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Mon, 30 Jan 2023 23:43:44 GMT
content-length: 24568
X-Firefox-Spdy: h2
boltbait.com/j.png
200 OK 19 kB IP
File type PNG image data, 103 x 116, 8-bit/color RGBA, non-interlaced\012- data
Hash c5f96e9521755969ecf9b74b8b7554d3
a150c9086eb16f0256a797118d219835fda9ac31
b8c6e59a6be87c71dfc09b6260bd3fc71ef4b147f8dac17c45765d63cb17c017
GET /j.png HTTP/1.1
Host: boltbait.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forums.getpaint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache,public
content-type: image/png
last-modified: Wed, 31 Oct 2018 22:21:16 GMT
accept-ranges: bytes
etag: "0d610a6871d41:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Mon, 30 Jan 2023 23:43:44 GMT
content-length: 19444
X-Firefox-Spdy: h2
boltbait.com/a.png
200 OK 26 kB IP
File type PNG image data, 100 x 116, 8-bit/color RGBA, non-interlaced\012- data
Hash f8cb9bef72332c92a8c490528a4c9c96
30310f6270bb1cb4d2947936f91577d1069c1f98
e45af85562d0a71c6cf4f01674ebd184eba0779e14a54cdb2ee5912b475acbaf
GET /a.png HTTP/1.1
Host: boltbait.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forums.getpaint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache,public
content-type: image/png
last-modified: Wed, 31 Oct 2018 22:21:16 GMT
accept-ranges: bytes
etag: "0d610a6871d41:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Mon, 30 Jan 2023 23:43:44 GMT
content-length: 25494
X-Firefox-Spdy: h2
boltbait.com/s.png
200 OK 23 kB IP
File type PNG image data, 92 x 116, 8-bit/color RGBA, non-interlaced\012- data
Hash fbca29e62d43e87347aa73bac01e4cfd
f2aec9328655a77ab7b70410d6f3041dc866be07
e10956d6d7336ac5120660f0a58156c2eb0483a65087bf1c9c8113d942cefab9
GET /s.png HTTP/1.1
Host: boltbait.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forums.getpaint.net/
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
cache-control: no-cache,public
content-type: image/png
last-modified: Wed, 31 Oct 2018 22:21:18 GMT
accept-ranges: bytes
etag: "0342b6871d41:0"
server: Microsoft-IIS/10.0
x-powered-by: ASP.NET
date: Mon, 30 Jan 2023 23:43:44 GMT
content-length: 23382
X-Firefox-Spdy: h2
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13680
Expires: Tue, 31 Jan 2023 03:30:53 GMT
Date: Mon, 30 Jan 2023 23:42:53 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13679
Expires: Tue, 31 Jan 2023 03:30:53 GMT
Date: Mon, 30 Jan 2023 23:42:54 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13679
Expires: Tue, 31 Jan 2023 03:30:53 GMT
Date: Mon, 30 Jan 2023 23:42:54 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13679
Expires: Tue, 31 Jan 2023 03:30:53 GMT
Date: Mon, 30 Jan 2023 23:42:54 GMT
Connection: keep-alive
r3.o.lencr.org/
200 OK 503 B IP
ASN #20940 Akamai International B.V.
Hash dfb84426fed94988d5c90372baff059c
f1c4740830034ff8a5759d59ae3f657ea524d083
d97efec67504b084ca6ff9e2af973b45b916f90aa021603e3615806bb2737b6a
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "D97EFEC67504B084CA6FF9E2AF973B45B916F90AA021603E3615806BB2737B6A"
Last-Modified: Sun, 29 Jan 2023 00:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13679
Expires: Tue, 31 Jan 2023 03:30:53 GMT
Date: Mon, 30 Jan 2023 23:42:54 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3366ef4f8733cb9c89a5c88f63a0a441
7da46843b6d885f38a4759a08e6c899906ab7b97
7114397ee5c251cc5cb46f3433c2cc17ff68a08e0872e227671198e9b61eba0a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F46e30ba8-4b02-4bad-8cbf-1a128aa4376f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9600
x-amzn-requestid: 48094e1a-d550-4a91-b87c-4a08505f7cce
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fVsWcFN7IAMF2pg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d2275c-5ced593a7e2126c9494563df;Sampled=0
x-amzn-remapped-date: Thu, 26 Jan 2023 07:10:20 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: aZOeDFqBJQoGwLpIs-GpPvY0FKGCAOXY6MgzG32qzX-kVzUCKKv-kw==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 01:57:09 GMT
age: 78345
etag: "7da46843b6d885f38a4759a08e6c899906ab7b97"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70d0f84c-475c-41c3-922d-8f0be8fbfff4.jpeg
200 OK 6.5 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70d0f84c-475c-41c3-922d-8f0be8fbfff4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash f6790dfb54452775c77c50890d17669a
a21e3ac869acae92640075dcb9da9ded4b7f0c92
b24238875cca2327ef4df93e5e66303f02b7f64265faebcb033a245c14638817
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F70d0f84c-475c-41c3-922d-8f0be8fbfff4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6481
x-amzn-requestid: ca20c9a5-983f-4cde-a833-2a561c13af95
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fY-T9FcXoAMFnlA=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d3774c-665397d31a681a155b8a7d53;Sampled=0
x-amzn-remapped-date: Fri, 27 Jan 2023 07:03:40 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: BpOJ8IlnGRS5RbTLM1pQdk11d9NJLiiUy7oIMbwYykeX5E6OyAAFdw==
via: 1.1 0aebf3fe433ff96e68d785fad4ea4c0e.cloudfront.net (CloudFront), 1.1 be082a2326b7d49643607b097f1e7180.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 17:04:34 GMT
age: 23900
etag: "a21e3ac869acae92640075dcb9da9ded4b7f0c92"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b003bbe-42d9-4014-8fbe-ddff072cc8b4.jpeg
200 OK 5.9 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b003bbe-42d9-4014-8fbe-ddff072cc8b4.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 42a648f9d34d8fb703f0b80a52e0deec
7ccefd66211d249ae5266c3b6ae3375a19e5cb6d
a57f8792e8caa2a31045a141d019f53f51b633d5d04baebdae97387740c6639d
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F4b003bbe-42d9-4014-8fbe-ddff072cc8b4.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5903
x-amzn-requestid: f6fca787-17c1-4edd-9ab0-a00e2fccc7a8
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fboufGeSoAMF-1g=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d487f6-58be6bdc5e3e767e1ea47b86;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 02:27:02 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: tAR5c5rQD0h5YZ6TU8pZKhUFUf5d0-l794EaYnwwkts3QXPhdYm6vA==
via: 1.1 470e3fe246a660ba6ace67a79f78d246.cloudfront.net (CloudFront), 1.1 556b99c6be8d7078b9f067347c62df6a.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:03:25 GMT
age: 9569
etag: "7ccefd66211d249ae5266c3b6ae3375a19e5cb6d"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5965fef2-c5a7-4a82-bcdc-41aebc355aff.jpeg
200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5965fef2-c5a7-4a82-bcdc-41aebc355aff.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 83d9e98a4575077e7400343c7f2038d2
6ac3ca84e97fa35afff9045f35d45499c0b34a23
da6d6d90a5ea8f5a864f3739591693b5f4b9793f2c4bb971486572f6bf2e940c
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F5965fef2-c5a7-4a82-bcdc-41aebc355aff.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7334
x-amzn-requestid: e62c149b-ca5f-4d0c-8d2d-e8bb2a7f9d8e
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fbvSzH2soAMFiYQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d49278-1214fc750a312e46527b2fd7;Sampled=0
x-amzn-remapped-date: Sat, 28 Jan 2023 03:11:52 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: e9kVyPl84SxMlIqs-0wE831KRF1kg1HOPTgntElaEp1RGOsgqB19ZA==
via: 1.1 0005a84c2971ff4f5bbb79e7ebc622a8.cloudfront.net (CloudFront), 1.1 6172bb1a5d00a3b06ae3700570ebe116.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 04:08:44 GMT
age: 70450
etag: "6ac3ca84e97fa35afff9045f35d45499c0b34a23"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7550d034-a90a-434b-9fea-868c8c7b245c.jpeg
200 OK 5.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7550d034-a90a-434b-9fea-868c8c7b245c.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash da3305c255098d7a3ae582b5962ba14c
00b899160598d98b5026d4b53814b16d3f745b14
d505f682650fcacc557eb821a055b0e6c61f4d2aa2c5d8f3b595a2d240335b55
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F7550d034-a90a-434b-9fea-868c8c7b245c.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 5678
x-amzn-requestid: 7fdf597d-0f02-48ef-9059-04d99a0d5dae
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: ffy4JFm8IAMFjJQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d631cd-6044076459b6b9815fbfbe9c;Sampled=0
x-amzn-remapped-date: Sun, 29 Jan 2023 08:43:57 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: w1OY-d-PqtQ6UnIIdLhYkvNlm6CSImBXYdQFkhBlweSIDxDaT5FdYQ==
via: 1.1 010c0731b9775a983eceaec0f5fa6a2e.cloudfront.net (CloudFront), 1.1 943c6a4d4ee43b18ee91634536f53eae.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 21:59:01 GMT
age: 6233
etag: "00b899160598d98b5026d4b53814b16d3f745b14"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0dd37b27-1930-4380-aa34-e533abb33eaa.jpeg
200 OK 8.8 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0dd37b27-1930-4380-aa34-e533abb33eaa.jpeg
IP
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 146cb1c622ae62d62090dcaf81709056
c9e939eea5ca410e2ac3e2c93fb9cdf51fd3a03e
d1a2caf59c5bfb3fd66c804217c60705de91e5beebd006cffab1d712a5aef85b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F0dd37b27-1930-4380-aa34-e533abb33eaa.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 8755
x-amzn-requestid: 18054ad3-92df-4a07-b7d1-643293ba4a5f
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: fR1hDGZfoAMFsFw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63d09c6c-7aae5ef32459231c25465b1b;Sampled=0
x-amzn-remapped-date: Wed, 25 Jan 2023 03:05:17 GMT
x-amz-cf-pop: SEA19-C2
x-cache: Hit from cloudfront
x-amz-cf-id: 5GkQA5AcFOFc2Wn5rdaX7nH5F4wfy52vtlpbI8Qlai-jQE77inKzqA==
via: 1.1 2afae0d44e2540f472c0635ab62c232a.cloudfront.net (CloudFront), 1.1 57a21088b36c69a83578b5a5579df58e.cloudfront.net (CloudFront), 1.1 google
date: Mon, 30 Jan 2023 10:06:07 GMT
age: 49007
etag: "c9e939eea5ca410e2ac3e2c93fb9cdf51fd3a03e"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 69ffc0a3f7ca2b025a6b99f9c38889be
1b436bda66cd246a1024f8c3d8e91e3aeef31eaa
9aaaf6c2a570c6a73a623f4fdfb0e1dfd5f16f086ae5d9c8d5b2403b0d016e4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 69ffc0a3f7ca2b025a6b99f9c38889be
1b436bda66cd246a1024f8c3d8e91e3aeef31eaa
9aaaf6c2a570c6a73a623f4fdfb0e1dfd5f16f086ae5d9c8d5b2403b0d016e4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
dl.dropbox.com/u/2987/PaintDotNet/signature.png
404 Not Found 54 kB URL HTTP/2 dl.dropbox.com/u/2987/PaintDotNet/signature.png
IP
Hash 8b95d788b89c0b8dee8dc92c43cde380
39e57f76bedfe939203d50c6a64d43129111aadd
1057a2408e5e4679b9dcf061f6cb886d7653aeebce982441d27b9697ee5c4dba
NIDS Severity Alert suricata high ETPRO POLICY dl.dropbox Download
GET /u/2987/PaintDotNet/signature.png HTTP/1.1
Host: dl.dropbox.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 404 Not Found
content-type: text/html
date: Mon, 30 Jan 2023 23:42:53 GMT
server: envoy
strict-transport-security: max-age=31536000; includeSubDomains; preload
x-robots-tag: noindex, nofollow, noimageindex
content-encoding: gzip
vary: Accept-Encoding
x-dropbox-response-origin: remote
x-dropbox-request-id: dead77d7786f4ec18b78a9b93d5daaa0
X-Firefox-Spdy: h2
pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-4343851330510276
200 OK 50 kB URL HTTP/2 pagead2.googlesyndication.com/pagead/js/adsbygoogle.js?client=ca-pub-4343851330510276
IP
File type ASCII text, with very long lines (4879)
Hash 44619fce005f9f25868d69f51498cd90
7c11a6758480d2fa77f01f375d11ade4d512cf55
f05954b93bb9d8af909f55c21fd05ee626bd3cf0973d49133eee44a5aeccb9d6
GET /pagead/js/adsbygoogle.js?client=ca-pub-4343851330510276 HTTP/1.1
Host: pagead2.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forums.getpaint.net/
Origin: https://forums.getpaint.net
Connection: keep-alive
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
date: Mon, 30 Jan 2023 23:42:54 GMT
expires: Mon, 30 Jan 2023 23:42:54 GMT
cache-control: private, max-age=3600
content-type: text/javascript; charset=UTF-8
etag: 908636172411365706
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 49807
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 69ffc0a3f7ca2b025a6b99f9c38889be
1b436bda66cd246a1024f8c3d8e91e3aeef31eaa
9aaaf6c2a570c6a73a623f4fdfb0e1dfd5f16f086ae5d9c8d5b2403b0d016e4f
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 2ac1bcdceabf1fc4e07017906aa8a815
ba00b737325fc50b35af8d851ced0fe13d1cba22
c6c54f5dbbfc40b454b9c67a7972827f500d83b10a1594f7cb56c69158278c08
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.google.com/recaptcha/api.js?hl=en_US&onload=recaptcha2Callback&render=explicit&csrfKey=&antiCache=d815db93211675019257
200 OK 583 B URL HTTP/2 www.google.com/recaptcha/api.js?hl=en_US&onload=recaptcha2Callback&render=explicit&csrfKey=&antiCache=d815db93211675019257
IP
File type ASCII text, with very long lines (913), with no line terminators
Hash a10d11c4a2d33e3e5f633a3cdce84178
c01abc096cad3761d23814405c66b98347c006dc
cd7fba591b63332db66a9ba31546ac56489fec0a38b110a56ffba877c7b691f7
GET /recaptcha/api.js?hl=en_US&onload=recaptcha2Callback&render=explicit&csrfKey=&antiCache=d815db93211675019257 HTTP/1.1
Host: www.google.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://forums.getpaint.net/
Connection: keep-alive
HTTP/2 200 OK
expires: Mon, 30 Jan 2023 23:42:54 GMT
date: Mon, 30 Jan 2023 23:42:54 GMT
cache-control: private, max-age=300
content-type: text/javascript; charset=UTF-8
cross-origin-resource-policy: cross-origin
content-encoding: gzip
x-content-type-options: nosniff
x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self'
x-xss-protection: 1; mode=block
content-length: 583
server: GSE
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash a5ff07b9b81cdf319f4a57d8d6dbbd6d
736ae15d0ed2068580d35a7cff8b33c0ec87af52
24406eda914ef8f78e1f60d6b54237ea6311f2fdf54b2b63647d84b397b41de0
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1b05a0b3c19155ff38f58b7dd4606775
ef6a909125ff3c1e9ea077163a86df4028ff490e
b0708b95554274b9cf8bced7a8668069a39b99a5e216c11b6c277bb912dcecf7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 4.9 kB IP
Hash 807d170c03ded2673a615aa950b2aa37
c85ad4b75df2817f9e7598ff74f5e30d4a646904
0062ee93bccb71a0efe443380d8fb5cde90829f62a1770b36248b9e9c6f450d9
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
200 OK 164 kB URL HTTP/2 www.gstatic.com/recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js
IP
File type ASCII text, with very long lines (771)
Size 164 kB (163774 bytes)
Hash 57c909ab73fc27ec24f737bbf1cb1de8
89b2c02e9e7a9a764518fca545d3eec2044fd6d9
7e407e2b00bb7c238c71d96472f7ab030de4e610b1048f0f77b25cb85c2d166b
GET /recaptcha/releases/RGRQD9tdxHtnt-Bxkx9pM75S/recaptcha__en.js HTTP/1.1
Host: www.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: https://forums.getpaint.net
Sec-Fetch-Dest: script
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Referer: https://forums.getpaint.net/
Connection: keep-alive
HTTP/2 200 OK
accept-ranges: bytes
vary: Accept-Encoding
content-encoding: gzip
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/recaptcha
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups; report-to="recaptcha"
report-to: {"group":"recaptcha","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/recaptcha"}]}
content-length: 163774
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 17:09:34 GMT
expires: Tue, 30 Jan 2024 17:09:34 GMT
cache-control: public, max-age=31536000
age: 23600
last-modified: Mon, 23 Jan 2023 01:02:00 GMT
content-type: text/javascript
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 73d6f94eec5f7bf78dc11951011af215
2d7941713a82a83c174bf782b618a6f86a8ab2d7
9de1920abadb3501bcf9f787608807f13a266efea69f12fc811bc7cac14a3552
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
partner.googleadservices.com/gampad/cookie.js?domain=forums.getpaint.net&callback=_gfp_s_&client=ca-pub-4343851330510276
200 OK 251 B URL HTTP/2 partner.googleadservices.com/gampad/cookie.js?domain=forums.getpaint.net&callback=_gfp_s_&client=ca-pub-4343851330510276
IP
File type ASCII text, with very long lines (391), with no line terminators
Hash 843ba4ccb1e083656aa940878763a06c
df60d812324f49a7892fd5f9918050b166e932e1
91a6cf3b8f291d78f6f92885f93c2ca4fb0fcfb7fb5f189b12408beb50a94878
GET /gampad/cookie.js?domain=forums.getpaint.net&callback=_gfp_s_&client=ca-pub-4343851330510276 HTTP/1.1
Host: partner.googleadservices.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://forums.getpaint.net/
Connection: keep-alive
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
content-type: text/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 30 Jan 2023 23:42:54 GMT
server: cafe
cache-control: private
content-length: 251
x-xss-protection: 0
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
adservice.google.no/adsid/integrator.js?domain=forums.getpaint.net
200 OK 100 B URL HTTP/2 adservice.google.no/adsid/integrator.js?domain=forums.getpaint.net
IP
File type ASCII text, with no line terminators
Hash 917951a58be8c6c6f3680159550ba3c2
21cd25c2a4eb9ec7e0f37021ce7b69e852dab4b4
cd8c45d9a0d98ca2e23d967483ec538bcafa246afdcf434bf60c8257acfacfac
GET /adsid/integrator.js?domain=forums.getpaint.net HTTP/1.1
Host: adservice.google.no
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
Referer: https://forums.getpaint.net/
Connection: keep-alive
HTTP/2 200 OK
p3p: CP="This is not a P3P policy! See http://support.google.com/accounts/answer/151657 for more info."
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
cache-control: private, no-cache, no-store
content-type: application/javascript; charset=UTF-8
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: gzip
date: Mon, 30 Jan 2023 23:42:54 GMT
server: cafe
content-length: 100
x-xss-protection: 0
alt-svc: h3="googleads.g.doubleclick.net:443"; ma=2592000,h3=":443"; ma=2592000,h3-29="googleads.g.doubleclick.net:443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
200 OK 472 B IP
Hash 1b05a0b3c19155ff38f58b7dd4606775
ef6a909125ff3c1e9ea077163a86df4028ff490e
b0708b95554274b9cf8bced7a8668069a39b99a5e216c11b6c277bb912dcecf7
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 84
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 472
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 73d6f94eec5f7bf78dc11951011af215
2d7941713a82a83c174bf782b618a6f86a8ab2d7
9de1920abadb3501bcf9f787608807f13a266efea69f12fc811bc7cac14a3552
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:42:54 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 087182d3a6a359284853764004bfb9b4
0297b9b2cb72a979d6a1267f587bab0fb79b7b40
aa00ff2ec55972ad493cedf34c369da582f052df3a1f660610b8cbbcb78ce5ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:42:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
200 OK 471 B IP
Hash 087182d3a6a359284853764004bfb9b4
0297b9b2cb72a979d6a1267f587bab0fb79b7b40
aa00ff2ec55972ad493cedf34c369da582f052df3a1f660610b8cbbcb78ce5ff
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Mon, 30 Jan 2023 23:42:55 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
tpc.googlesyndication.com/pagead/js/r20230125/r20110914/client/qs_click_protection_fy2021.js
200 OK 7.5 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20230125/r20110914/client/qs_click_protection_fy2021.js
IP
File type ASCII text, with very long lines (1506)
Hash c8e19ab58d75eb01fd735f016f55201f
e3d257ad917d19ae463c29907f36e31e856cad37
52207b7bc66270e84d6bb6c05c6d5a2d2b0d511138073a3d3fe15d7c08119932
GET /pagead/js/r20230125/r20110914/client/qs_click_protection_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 7523
x-xss-protection: 0
date: Mon, 30 Jan 2023 22:37:38 GMT
expires: Mon, 13 Feb 2023 22:37:38 GMT
cache-control: public, max-age=1209600
age: 3917
etag: 641023367890010850
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
tpc.googlesyndication.com/pagead/js/r20230125/r20110914/abg_lite_fy2021.js
200 OK 8.9 kB URL HTTP/2 tpc.googlesyndication.com/pagead/js/r20230125/r20110914/abg_lite_fy2021.js
IP
File type ASCII text, with very long lines (1569)
Hash f2def32331d05ead62d41a3b7d8a5aa6
886a89d32487bf14c4b6ca1455541859bfd9ab93
7d8b5162d6dc445509916c04871b423469ac015154fe015fe38f6529be4bbf77
GET /pagead/js/r20230125/r20110914/abg_lite_fy2021.js HTTP/1.1
Host: tpc.googlesyndication.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://googleads.g.doubleclick.net/
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
p3p: policyref="https://www.googleadservices.com/pagead/p3p.xml", CP="NOI DEV PSA PSD IVA IVD OTP OUR OTR IND OTC"
timing-allow-origin: *
cross-origin-resource-policy: cross-origin
vary: Accept-Encoding
access-control-allow-origin: *
x-content-type-options: nosniff
content-disposition: attachment; filename="f.txt"
content-encoding: br
server: cafe
content-length: 8871
x-xss-protection: 0
date: Mon, 30 Jan 2023 22:35:25 GMT
expires: Mon, 13 Feb 2023 22:35:25 GMT
cache-control: public, max-age=1209600
age: 4050
etag: 9510037503091481574
content-type: text/javascript; charset=UTF-8
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
200 OK 28 kB URL HTTP/2 fonts.gstatic.com/s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 28288, version 1.0\012- data
Hash 53b5e785dfdca21fa7adf7119fa1f8cc
a3a86dfd216ad29183ba5493ae39d45b62f9d8b8
4a6fab14bfe7b33fe5dc5349a2bb3720037e0ed7ebe621b352340f9514d83c08
GET /s/googlesans/v45/4UasrENHsxJlGDuGo1OIlJfC6l_24rlCK1Yo_Iqcsih3SAyH6cAwhX9RPjIUvQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 28288
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 14:34:21 GMT
expires: Fri, 26 Jan 2024 14:34:21 GMT
cache-control: public, max-age=31536000
age: 378514
last-modified: Wed, 01 Jun 2022 19:05:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15344, version 1.0\012- data
Hash 5d4aeb4e5f5ef754e307d7ffaef688bd
06db651cdf354c64a7383ea9c77024ef4fb4cef8
3e253b66056519aa065b00a453bac37ac5ed8f3e6fe7b542e93a9dcdcc11d0bc
GET /s/roboto/v18/KFOmCnqEu92Fr1Mu4mxK.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15344
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 21:48:03 GMT
expires: Fri, 26 Jan 2024 21:48:03 GMT
cache-control: public, max-age=31536000
age: 352492
last-modified: Mon, 16 Oct 2017 17:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
200 OK 15 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15340, version 1.0\012- data
Hash 19b7a0adfdd4f808b53af7e2ce2ad4e5
81d5d4c7b5035ad10cce63cf7100295e0c51fdda
c912a9ce0c3122d4b2b29ad26bfe06b0390d1a5bdaa5d6128692c0befd1dfbbd
GET /s/roboto/v18/KFOlCnqEu92Fr1MmYUtfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15340
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 30 Jan 2023 23:41:32 GMT
expires: Tue, 30 Jan 2024 23:41:32 GMT
cache-control: public, max-age=31536000
last-modified: Mon, 16 Oct 2017 17:33:16 GMT
content-type: font/woff2
age: 83
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15552, version 1.0\012- data
Hash 285467176f7fe6bb6a9c6873b3dad2cc
ea04e4ff5142ddd69307c183def721a160e0a64e
5a8c1e7681318caa29e9f44e8a6e271f6a4067a2703e9916dfd4fe9099241db7
GET /s/roboto/v18/KFOlCnqEu92Fr1MmEU9fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://www.google.com
Connection: keep-alive
Referer: https://www.google.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15552
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Thu, 26 Jan 2023 16:40:43 GMT
expires: Fri, 26 Jan 2024 16:40:43 GMT
cache-control: public, max-age=31536000
age: 370932
last-modified: Mon, 16 Oct 2017 17:33:02 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15740, version 1.0\012- data
Hash b9c29351c46f3e8c8631c4002457f48a
e57e59c5780995ff2937ab2b511a769212974a87
f75911313e1c7802c23345ab57e754d87801581706780c993fb23ff4e0fe62ef
GET /s/roboto/v30/KFOlCnqEu92Fr1MmSU5fBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15740
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Sat, 28 Jan 2023 10:26:49 GMT
expires: Sun, 28 Jan 2024 10:26:49 GMT
cache-control: public, max-age=31536000
age: 220567
last-modified: Wed, 11 May 2022 19:24:56 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
200 OK 16 kB URL HTTP/2 fonts.gstatic.com/s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2
IP
File type Web Open Font Format (Version 2), TrueType, length 15860, version 1.0\012- data
Hash e9f5aaf547f165386cd313b995dddd8e
acdef5603c2387b0e5bffd744b679a24a8bc1968
f5aebdfea35d1e7656ef4acc5db1f243209755ae3300943ef8fc6280f363c860
GET /s/roboto/v30/KFOlCnqEu92Fr1MmWUlfBBc4.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://googleads.g.doubleclick.net
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 15860
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Tue, 24 Jan 2023 13:09:06 GMT
expires: Wed, 24 Jan 2024 13:09:06 GMT
cache-control: public, max-age=31536000
age: 556430
last-modified: Wed, 11 May 2022 19:24:42 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Inter:300,300i,400,400i,500,700,700i
200 OK 16 kB URL HTTP/2 fonts.googleapis.com/css?family=Inter:300,300i,400,400i,500,700,700i
IP
Hash d8c732630ba6fdf409cda48c2a313859
1e33992293926c5e12081a3c349767b30dda7a6e
4736d86dcfa65d6dccdf75870988d24e8cb4e197b0d4b28a718a01a3416f26a6
GET /css?family=Inter:300,300i,400,400i,500,700,700i HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forums.getpaint.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Mon, 30 Jan 2023 23:42:53 GMT
date: Mon, 30 Jan 2023 23:42:53 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000
X-Firefox-Spdy: h2
content.invisioncic.com/r125076/css_built_1/62e269ced0fdab7e30e026f1d30ae516_forums.css.gz?v=d815db93211673395142
200 OK 0 B URL HTTP/2 content.invisioncic.com/r125076/css_built_1/62e269ced0fdab7e30e026f1d30ae516_forums.css.gz?v=d815db93211673395142
IP
GET /r125076/css_built_1/62e269ced0fdab7e30e026f1d30ae516_forums.css.gz?v=d815db93211673395142 HTTP/1.1
Host: content.invisioncic.com
User-Agent: Mozilla/5.0 (Windows NT 10.0; Win64; x64; rv:105.0) Gecko/20100101 Firefox/105.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Referer: https://forums.getpaint.net/
Connection: keep-alive
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css
content-length: 3832
date: Wed, 11 Jan 2023 00:00:32 GMT
x-amz-replication-status: COMPLETED
last-modified: Tue, 10 Jan 2023 23:59:12 GMT
etag: "322e803169908c40d189867143fdb9c9"
cache-control: public, max-age=31536000
content-encoding: gzip
x-amz-version-id: Ve8MrrA8QFrBj8jUAA5TTVMKvP9pE3HN
accept-ranges: bytes
server: AmazonS3
x-cache: Hit from cloudfront
via: 1.1 fc5e625db631bc657fc73f189d53fa14.cloudfront.net (CloudFront)
x-amz-cf-pop: OSL50-P1
alt-svc: h3=":443"; ma=86400
x-amz-cf-id: NqxQzFt0CuerIonOZarlCQJXP3dedBpbt_msC65VM_eaFOvX-xiWNQ==
age: 1726942
X-Firefox-Spdy: h2
54.230.111.67
93.184.220.29
151.101.244.193
23.36.77.32
0.0.0.0